Self-Executing HTML: Internet Explorer 5.5 and 6.0 Part IV

http-equiv_at_excite.com
Date: 01/01/04

  • Next message: tlarholm_at_PIVX.COM: "Re: Self-Executing HTML: Internet Explorer 5.5 and 6.0 Part IV" 
    Date:         Thu, 1 Jan 2004 22:42:49 -0000
To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM

    Thursday, January 01, 2004

    The following file is an html file comprising both scripting and
    an executable [*.exe].

    We inject scripting and an executable into the html file which
    is designed to point back to the executable in the html file and
    execute it. Provided the html file is an html file, Internet
    Explorer 5.5 and 6.0 will execute it.

    Because it is an html file proper, Internet Explorer opens it.
    The scripting inside is then parsed and fired. That scripting is
    pointing back to the same executable file and because it is a
    self-executing html file, it executes !

    Fully self-contained harmless *.exe:

    http://www.malware.com/exe-cute-html.zip

    Be aware of html files out there. 

    --
http://www.malware.com
-----
Editor's Note: The 43rd Most Powerful Person in Networking says...
Marcus Ranum's new book "The Myth of Homeland Security" is now out and is available from http://www.amazon.com/ranum In this hard-hitting review of the homeland security business, Ranum shows us how the problem is vastly harder than it's being made to sound, and how special interests, *** covering, and bureaucracy are threatening to derail any chance of making progress.
-----
  • Next message: tlarholm_at_PIVX.COM: "Re: Self-Executing HTML: Internet Explorer 5.5 and 6.0 Part IV"